Zero-Trust For All: A Practical Guide

While “zero-trust architecture” has become a buzz phrase, there’s plenty of confusion as to what it actually is. Is it a concept? A standard? A framework? An actual set of technology platforms? According to security experts, it’s best described as a fresh mindset for approaching cybersecurity...

IRCCloud: Password type input with auto-complete enabled

Vulnerability description : When a new name and password is entered in a form and the form is submitted, the browser asks if the password should be saved. Thereafter when the form is displayed, the name and password are filled in automatically or are completed as the name is entered. An attacker...

Localize: Password type input with auto-complete enabled

Vulnerability description When a new name and password is entered in a form and the form is submitted, the browser asks if the password should be saved. Thereafter when the form is displayed, the name and password are filled in automatically or are completed as the name is entered. An attacker wi...

Scientific Linux Security Update : kernel on SL5.x i386/x86_64

Security fixes : - NULL pointer dereference flaws in the r128 driver. Checks to test if the Concurrent Command Engine state was initialized were missing in private IOCTL functions. An attacker could use these flaws to cause a local denial of service or escalate their privileges. CVE-2009-3620,...

[ Hackerslab bug_paper ] Linux ORACLE 8.1.5 vulnerability

================================================================================ Hackerslab bugpaper Linux ORACLE 8.1.5 vulnerability ================================================================================ File : Oracle 8.1.5 SYSTEM : LINUX Tested by RedHat Linux 6.2 INFO : There are two...